Недавно пошла очень мощная дискуссия на LKML по поводу создания security only mailing list'a для ядра. Высказываются разные мнения по поводу "открытости" подобной рассылки, а также целесообоазности её создания. Довольно интересное чтиво, особенно радуют высказывания некоторых участников.
Alan Cox:
"Given that base 2.6 kernels are shipped by Linus with known unfixed security holes anyone trying to use them really should be doing some careful thinking. In truth no 2.6 released kernel is suitable for anything but beta testing until you add a few patches anyway.
2.6.9 for example went out with known holes and broken AX.25 (known). 2.6.10 went out with the known holes mostly fixed but memory corrupting bugs, AX.25 still broken and the wrong fix applied for the smb holes so SMB doesn't work on it".
>>> Подробности